Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exUBXdufhEEqZ9s-Jv7LTdy72YA.cer
File: exUBXdufhEEqZ9s-Jv7LTdy72YA.cer (raw, json)
Hash identifier: INksF2UNz5cX8Z4I4jhOOS3cZ2nDtbDL2RzvViDWUCc=
Subject key identifier: 7B:15:01:5D:DB:9F:84:41:2A:67:DB:3E:26:FE:CB:4D:DC:BB:D9:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/exUBXdufhEEqZ9s-Jv7LTdy72YA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Sep 2024 20:03:28 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 132099
IP: 103.70.170.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134779 (0x20e7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 19 20:03:28 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91F6B3D/serialNumber=7B15015DDB9F84412A67DB3E26FECB4DDCBBD980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6f:02:30:98:ea:4f:bc:3a:17:b9:a3:32:57:
1f:3b:03:1d:59:59:f8:1a:03:86:01:05:43:c2:08:
9a:d1:14:88:63:05:22:be:05:83:15:70:22:64:6e:
79:f5:1f:7b:58:1a:08:02:36:91:6b:18:9c:6f:0f:
a9:a3:4e:47:24:ab:a9:ed:ef:5d:53:f5:c5:e5:db:
93:6f:b2:2b:b9:7e:74:de:74:ca:b9:8e:fa:be:d1:
e5:be:25:8d:e5:d9:a5:76:9d:dc:ab:41:fa:8f:b0:
c8:f6:0c:9d:3f:a1:a9:dc:f0:67:79:fc:22:cc:ba:
9a:c9:00:a3:21:60:4c:f7:87:41:72:b3:3f:ec:20:
29:92:16:b3:db:ed:5b:ae:08:fb:6e:4a:7c:34:a1:
40:cc:c8:96:29:91:0a:c9:e3:7d:50:c4:40:ad:2f:
27:6f:24:d2:c3:68:0d:47:c7:31:b3:a2:b2:72:02:
96:a2:98:bc:3b:c6:b4:99:49:e5:57:ed:8e:a8:9a:
7e:12:96:33:f3:13:a4:c4:63:9b:8d:4f:1f:6c:c6:
b5:98:fe:9b:b5:44:11:78:62:d8:f1:c8:5e:0b:b3:
c3:73:68:f0:06:f4:c8:c7:2b:85:87:2a:54:a1:9d:
ac:d5:66:a4:a7:e8:9d:e8:65:95:99:2d:86:3a:3f:
0a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:15:01:5D:DB:9F:84:41:2A:67:DB:3E:26:FE:CB:4D:DC:BB:D9:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F6B3D/0E978E64596211EBA40B5C85C4F9AE02/exUBXdufhEEqZ9s-Jv7LTdy72YA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132099
sbgp-ipAddrBlock: critical
IPv4:
103.70.170.0/23
Signature Algorithm: sha256WithRSAEncryption
ca:1a:f8:62:0e:f1:2c:c1:00:37:62:d3:cf:85:a4:3b:3a:ae:
e8:e2:ae:86:d9:ef:01:37:5c:68:87:c9:74:14:83:43:ed:81:
7a:cf:bd:f8:33:42:1e:8a:0c:81:dd:14:96:98:16:55:7d:7a:
7c:8b:3e:f4:a7:37:c6:5d:25:31:a7:2a:15:72:c8:c5:1b:af:
dc:eb:57:88:0c:e5:07:1b:aa:83:3b:17:d5:f2:8c:a2:42:aa:
de:cb:86:f0:a7:0f:28:4f:99:e9:69:bc:5d:a1:39:68:89:74:
32:38:90:38:75:11:2c:6e:94:78:2a:f1:06:a2:a1:cc:52:f3:
cb:eb:e6:31:08:79:88:a0:08:1b:61:eb:84:1d:00:4d:3e:e5:
0c:d0:40:a5:52:63:02:c3:74:8e:02:41:1a:3e:3b:17:fe:0a:
f8:eb:5b:34:4f:30:dc:89:a1:8e:79:ba:5e:81:dd:8b:a1:85:
d7:b1:c5:e8:fd:cb:f9:b2:b4:c3:e0:19:73:db:a0:0f:80:54:
90:78:bd:d4:4c:5d:f0:3b:a8:bd:6c:4d:e9:63:57:ff:01:d7:
36:c2:a7:4a:7d:b4:c0:64:a0:df:dc:c6:a3:30:2e:0f:aa:f5:
9b:aa:85:9f:72:c2:7b:07:48:e6:05:40:d9:cc:2f:39:83:c0:
cd:ff:77:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:55 2024 by rpki-client on console-ams.rpki-client.org